17 of 17 Permanent Threat Modelling Jobs in London

play a critical role in designing, assuring, and delivering secure solutions across our client engagements. You will champion Secure by Design principles and lead threat modelling activities to ensure risks are identified and mitigated early in the life cycle. Working closely with stakeholders, you will define security architectures … Design - Embed security into every stage of the solution life cycle, ensuring systems are designed with security controls from the outset rather than retrofitted. Threat Modelling - Lead and facilitate threat modelling exercises (eg STRIDE), identifying vulnerabilities and defining mitigations early in delivery Risk Assessment - Identify, assess ...

functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management … Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs ...

exciting opportunity has arisen for a Threat Detection Engineer to join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. As a Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities … offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection logic informed by threat intelligence and hunting activities. Developing innovative analytical techniques to identify incidents effectively. Collaborating with an outsourced ...

exciting opportunity has arisen for a Threat Detection Engineer to join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. As a Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities … offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection logic informed by threat intelligence and hunting activities. Developing innovative analytical techniques to identify incidents effectively. Collaborating with an outsourced ...

security professionals who want to transition into a GenAI-focused career path and develop deep expertise in securing AI/ML systems. Key Responsibilities Threat Analysis and Vulnerability Assessment Conduct regular threat modelling and vulnerability assessments across AI/ML systems, including data pipelines, model APIs … skills in Python and Bash Strong knowledge of cloud technologies, specifically AWS and Azure Strong understanding of API development and API security Experience with threat modelling, penetration testing, and vulnerability assessments Familiarity with secure software development practices (OWASP, DevSecOps) Interest in or exposure to data science ...

deployment and tuning (Defender for Endpoint, CrowdStrike), Intune/Jamf device management, privileged access workstations, JIT/JEA models API and application security: threat modelling (STRIDE/PASTA), OAuth 2.0/OIDC implementation review, secrets management (Key Vault, HashiCorp Vault), and secure SDLC integration PKI, certificate lifecycle automation … automation and IaC: Python, PowerShell, Terraform, Bicep, or Sentinel analytics rules - you codify controls, you do not document them MITRE ATT&CK coverage mapping; threat hunting, adversary emulation, and proactive gap analysis against realistic TTPs Cloud infrastructure - Azure preferred, AWS considered; IAM, managed services, automated and auditable deployment pipelines ...

strategic change projects; define and implement security standards across the full software development lifecycle; develop API security standards and secure integration patterns and conduct threat modelling and risk assessments for new technology implementations. Location/WFH: There's a hybrid work from home model with three days … City office with rooftop bar. About you: You have an indepth knowledge of Application Security and secure software development You have experience of conducting threat modelling, security risk assessments and security architecture reviews You're keen to take ownership of Greenfield systems and processes You're collaborative ...

client audit requests as they relate to AI use at the firm. Perform detailed security analysis of application architectures to provide assurance. Understand threat modelling and participate in major incidents responses with IAM and AI components. Review and approve the IAM components of solution designs. Collaborate with cloud ...

align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have the opportunity to share … adherence to the change management process when implementing IAM relevant changes to architecture. Perform detailed analysis of application architectures to provide IAM assurance. Understand threat modelling and participate in major incidents responses with IAM components. Review and approve the IAM components of solution designs. Collaborate with cloud infrastructure ...

DevOps and infrastructure teams to embed security into cloud deployments Monitor and improve cloud security posture Identify and remediate vulnerabilities across cloud systems Support threat modelling and security architecture discussions Required Skills: Experience working with AWS, Azure or GCP environments Understanding of cloud security best practices Familiarity with … container technologies such as Docker or Kubernetes Experience with infrastructure-as-code tools such as Terraform Strong understanding of security monitoring and threat detection Nice to Have: Experience with cloud security tools such as Prisma, Wiz or Lacework Knowledge of DevSecOps practices Security certifications such as CISSP, CCSP ...

optimisation of Microsoft Defender for Cloud Develop and enforce Azure security policies, standards, and guardrails Implement Zero Trust principles across Azure workloads Conduct threat modelling and architecture risk assessments Review and remediate security findings from Defender, vulnerability tools, and audits Collaborate with Operations teams to drive timely remediation ...

clicks. As an AWS Security Engineer you will design AWS cloud solutions, implement and manage security controls between AWS and Kubernetes EKS environments, conduct threat modelling, code review and penetration testing on the AWS infrastructure, configure and manage web application firewall rules and automate security checks and repetitive ...

about influence, clarity, and partnership translating complex technical concepts into actionable guidance while building trusted relationships across the organisation. You will design reference architectures, threat models, and secure design patterns across hybrid, cloud-native, and on-premises environments, establishing the frameworks and guardrails that drive consistent, resilient, and scalable ...

BPMN tools (e.g., Camunda, Airflow, Drools) related to customization of modeler and engine. Nice to have Experience with enterprise architecture frameworks (TOGAF, Zachman) and threat modeling (STRIDE). Knowledge of data partitioning, GDPR, and the latest UI trends, such as Micro Frontend Architecture, is desirable. Experience with Pega/ ...

requirements set by the government agencies. The security assessment task includes testing applications in line with well-known industry standards including: OWASP MASVS testing, threat modelling, tool relating to data flow analysis within the device and to the network; static and dynamic testing using tools such as MobSF ...

runbooks. Conduct technical assessments across identity, endpoint, cloud posture, logging, and security operations. Develop, optimise, and tune KQL queries for detection engineering and threat hunting. Review and enhance security configurations across cloud and SIEM/SOAR platforms. Manage engagements through architecture, deployment, tuning, documentation, and customer enablement. Identify security … gaps and recommend improvements across logging, identity, endpoint hardening, cloud posture, and threat detection. Platform & Engineering Understand how endpoints, servers, domain controllers, and cloud workloads operate, and how security controls integrate with them. Support remediation of misconfigurations and optimisation of security deployments. Leverage scripting, APIs, and automation to streamline ...

onsite) Job Type: PermanentA globally established organisation is seeking a Microsoft Security Engineer to strengthen its security capability across identity, endpoint, data protection and threat detection. This role will focus on leveraging the Microsoft security stack, including Defender XDR, Purview and Entra ID, to protect enterprise systems, manage risk … using Microsoft Entra ID, including Conditional Access and MFA Implement and maintain Privileged Identity Management (PIM/PAM) and secure access policies Conduct proactive threat hunting and support incident response activities Secure cloud applications and endpoints, ensuring alignment with security best practices Support eDiscovery, audit and data governance requirements ...